Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: 38zXwZzvHhzkbtU8Ka1JPZBPSGIOuGo4DyvjzphN6Ts=
Subject key identifier: D2:0D:8A:8D:42:B9:81:DF:BF:48:84:85:58:83:A8:70:F0:97:58:39
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 0197B5C48628CB2C6D9D078D00A0B70747C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 0CA7
Signing time: Sat 28 Jun 2025 09:00:44 +0000
Manifest this update: Sat 28 Jun 2025 09:00:44 +0000
Manifest next update: Sun 29 Jun 2025 09:00:44 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: vAT84JO+obJM8isUPd/jnUub7PEh2AEzpc0rp0wq+Qk=)
2: wUSVu8lDNfoUWdaRO2jsDgRSmsg.roa (hash: A2CVwSparFGjp8/uMP7BcSnzpGUx0FpocYCZqqW30C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:86:28:cb:2c:6d:9d:07:8d:00:a0:b7:07:47:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: Jun 28 09:00:44 2025 GMT
Not After : Jun 29 09:00:44 2025 GMT
Subject: CN=d20d8a8d42b981dfbf4884855883a870f0975839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9e:f6:ec:c0:70:39:de:df:6a:59:b9:b5:08:
66:52:f9:44:52:7a:2d:cf:58:d1:29:6d:04:93:fd:
23:6d:4c:f0:95:90:d3:ce:e6:81:4b:dc:31:8b:dd:
1a:95:c3:32:80:7e:3d:77:63:7f:5d:7c:9a:27:98:
b8:bf:85:c0:d8:9e:c2:a0:7c:78:90:d0:39:d7:b5:
ec:5e:27:c2:d9:63:96:77:8a:2d:ba:50:41:1f:67:
4b:16:d5:1c:a0:ef:a7:da:ef:e4:0f:ad:2f:75:32:
ae:dc:50:f6:8b:ec:0a:73:d6:8d:b2:c4:85:a4:cc:
9d:97:a9:c5:52:bc:fa:3f:53:46:2a:ac:93:43:28:
a6:f2:a4:f3:f2:44:ec:11:78:da:cd:74:a8:4a:7a:
14:db:e5:2f:43:c7:dc:6e:1f:7d:93:0d:c7:a1:1b:
0d:f7:6c:27:90:e5:c9:cc:c3:0b:3d:78:e3:c3:9c:
ba:ce:13:66:24:39:00:b9:8b:37:95:1e:db:b6:40:
f0:c8:45:c3:cb:3d:7d:2a:4b:05:f1:1a:04:0f:83:
4b:b8:72:0e:6a:2f:84:9c:e7:2e:02:fa:dd:d1:e0:
27:23:00:0a:ac:db:84:8f:1d:eb:cb:64:e7:14:c7:
af:8b:9d:88:d0:07:36:f9:df:aa:a9:40:66:9e:9e:
1d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:0D:8A:8D:42:B9:81:DF:BF:48:84:85:58:83:A8:70:F0:97:58:39
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:07:c1:42:64:65:6e:36:a1:4b:97:d9:1a:cc:87:9b:63:e3:
4b:44:ef:9b:6a:9e:e7:4a:6f:98:dc:ca:9d:bd:0a:96:82:f5:
5a:70:c1:74:ff:34:95:68:c8:ac:42:9f:1b:64:af:83:ea:09:
b5:a9:06:5b:06:39:e6:18:99:63:a7:56:7b:94:08:f6:d6:c5:
d9:2a:ee:86:e7:d2:7c:a3:50:16:0a:9c:31:22:60:c6:11:d3:
fc:4a:79:da:82:5a:00:da:27:10:76:47:88:7e:0e:a2:e3:f7:
ab:e7:95:70:a7:df:c7:4a:09:3f:a8:36:b8:bc:0f:f5:b7:af:
cb:b8:e6:52:9e:ce:65:ea:73:f4:1d:c9:14:32:ee:27:38:ca:
c3:13:ed:67:1a:f4:54:c8:26:e5:2d:f1:b8:57:31:9f:5b:a6:
b3:c7:3c:89:7d:88:a8:d1:0b:b7:ef:ff:4a:8c:ed:b5:47:c9:
4e:ef:15:86:27:5e:22:a0:4b:94:b7:db:fd:8a:cf:b6:54:ad:
75:47:84:38:61:49:c1:e8:37:30:7b:9a:48:92:88:90:05:ec:
45:4c:5b:13:84:f0:bb:87:51:58:ef:2c:0d:f1:b8:d8:39:0f:
bd:6f:d2:cf:c8:77:a2:70:a2:f2:17:d5:f6:af:d7:1f:39:1a:
9b:40:10:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:47:41 2025 by rpki-client